Scenario description

In this tutorial, you test Azure AD single sign-on in a test environment.
The scenario outlined in this tutorial consists of two main building blocks:

Adding Evernote from the gallery

Configuring and testing Azure AD single sign-on

Adding Evernote from the gallery

To configure the integration of Evernote into Azure AD, you need to add Evernote from the gallery to your list of managed SaaS apps.

To add Evernote from the gallery, perform the following steps:

In the Azure portal, on the left navigation panel, click Azure Active Directory icon.

Navigate to Enterprise applications. Then go to All applications.

To add new application, click New application button on the top of dialog.

In the search box, type Evernote, select Evernote from result panel then click Add button to add the application.

Configure and test Azure AD single sign-on

In this section, you configure and test Azure AD single sign-on with Evernote based on a test user called "Britta Simon".

For single sign-on to work, Azure AD needs to know what the counterpart user in Evernote is to a user in Azure AD. In other words, a link relationship between an Azure AD user and the related user in Evernote needs to be established.

In Evernote, assign the value of the user name in Azure AD as the value of the Username to establish the link relationship.

To configure and test Azure AD single sign-on with Evernote, you need to complete the following building blocks:

b. Paste SAML Single sign-on Service URL value, which you have copied from the Azure portal into the SAML HTTP Request URL textbox.

c. Open the downloaded certificate from Azure AD in a notepad and copy the content including "BEGIN CERTIFICATE" and "END CERTIFICATE" and paste it into the X.509 Certificate textbox.

d.Click Save Changes

Tip

You can now read a concise version of these instructions inside the Azure portal, while you are setting up the app! After adding this app from the Active Directory > Enterprise Applications section, simply click the Single Sign-On tab and access the embedded documentation through the Configuration section at the bottom. You can read more about the embedded documentation feature here: Azure AD embedded documentation

Create an Azure AD test user

The objective of this section is to create a test user in the Azure portal called Britta Simon.

To create a test user in Azure AD, perform the following steps:

In the Azure portal, in the left pane, click the Azure Active Directory button.

To display the list of users, go to Users and groups, and then click All users.

To open the User dialog box, click Add at the top of the All Users dialog box.

In the User dialog box, perform the following steps:

a. In the Name box, type BrittaSimon.

b. In the User name box, type the email address of user Britta Simon.

c. Select the Show Password check box, and then write down the value that's displayed in the Password box.

d. Click Create.

Create an Evernote test user

In order to enable Azure AD users to log into Evernote, they must be provisioned into Evernote.In the case of Evernote, provisioning is a manual task.

To provision a user accounts, perform the following steps:

Log in to your Evernote company site as an administrator.

Click the 'Admin Console'.

From the 'Admin Console', go to ‘Add users’.

Add team members in the Email textbox, type the email address of user account and click Invite.

After invitation is sent, the Azure Active Directory account holder will receive an email to accept the invitation.

Assign the Azure AD test user

In this section, you enable Britta Simon to use Azure single sign-on by granting access to Evernote.

To assign Britta Simon to Evernote, perform the following steps:

In the Azure portal, open the applications view, and then navigate to the directory view and go to Enterprise applications then click All applications.

Test single sign-on

In this section, you test your Azure AD single sign-on configuration using the Access Panel.

When you click the Evernote tile in the Access Panel, you should get signed-on to your Evernote application. You'll be logging in as an Organization account but then need to log in with your personal account.